chore: Bump github.com/google/go-containerregistry from 0.21.2 to 0.21.3 in the go-dependencies group

[dependabot]

Bumps the go-dependencies group with 1 update: github.com/google/go-containerregistry.

Updates github.com/google/go-containerregistry from 0.21.2 to 0.21.3

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.21.3

What's Changed

• Adds local file support to the crane index subcommand by @​edwardthiele in google/go-containerregistry#2223
• migrate to github.com/moby/moby modules by @​thaJeztah in google/go-containerregistry#2228
• Bump the go-deps group across 4 directories with 7 updates by @​dependabot[bot] in google/go-containerregistry#2233
• Bump goreleaser/goreleaser-action from 6.4.0 to 7.0.0 in the actions group by @​dependabot[bot] in google/go-containerregistry#2220
• mutate: reject path traversal and symlink escape in Extract by @​KevinZhao in google/go-containerregistry#2227
• tarball: detect symlink cycles in extractFileFromTar by @​vnykmshr in google/go-containerregistry#2232
• bump golang to 1.25.7 by @​Subserial in google/go-containerregistry#2236

New Contributors

• @​edwardthiele made their first contribution in google/go-containerregistry#2223
• @​thaJeztah made their first contribution in google/go-containerregistry#2228
• @​KevinZhao made their first contribution in google/go-containerregistry#2227
• @​vnykmshr made their first contribution in google/go-containerregistry#2232

Full Changelog: google/go-containerregistry@v0.21.2...v0.21.3

Commits

• 3888fb8 bump golang to 1.25.7 (#2236)
• f439624 tarball: detect symlink cycles in extractFileFromTar (#2232)
• 400c263 mutate: reject path traversal and symlink escape in Extract (#2227)
• 47eedc9 Bump goreleaser/goreleaser-action in the actions group (#2220)
• be0a845 Bump the go-deps group across 4 directories with 7 updates (#2233)
• e916301 migrate to github.com/moby/moby modules (#2228)
• 8b2478e Adds local file support to the crane index subcommand (#2223)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like github.com/google/go-containerregistry is updatable in another way, so this is no longer needed.